Progress so far - https://mander.xyz/post/47833580
My next objective is configuring Jellyfin for secure external access. It is fully operational on my LAN and is performing significantly better than the Windows instance I previously ran.
I have installed Tailscale on the Proxmox VE host shell to enable remote access and have also enabled multi-factor authentication on my proxmox account. While everything appears to be functioning properly, I am still relatively new to Tailscale and want to ensure I am implementing this securely.
My initial assumption was that I would also need to install Tailscale within the Jellyfin LXC container. However, I have encountered conflicting information suggesting this may introduce security concerns, particularly when dealing with container privileges and root access. As a result, I am uncertain whether this is the appropriate approach.
What is the recommended and secure method to provide external access to Jellyfin in this setup?
You have 2 options:
1 - Open up Jellyfin port (8093) in your router if you are not behind a cgnat and add a reverse proxy
2 - Get a small vps and a domain, install a reverse proxy and use tailscale to connect the vps with your home server, point your domain to the vps and forward traffic to jellyfin.
I can open the required port without issue. However, I would like to further educate myself on reverse proxy configurations, as I believe this would be the most secure and appropriate approach. Thank you!